Bug #24015: Use Content-Security-Policy strict headers - Rudder - Issue Tracker

Actions

Copy link

Bug #24015

closed

Use Content-Security-Policy strict headers

Added by Clark ANDRIANASOLO 4 months ago. Updated about 2 months ago.

Status:

Released

Priority:

N/A

Assignee:

Clark ANDRIANASOLO

Category:

Security

Target version:

8.1.0~beta2

Pull Request:

Severity:

Trivial - no functional impact | cosmetic

UX impact:

User visibility:

Effort required:

Large

Priority:

Name check:

To do

Fix check:

To do

Regression:

Description

We would like to use strict Content-Security-Policy headers when returning HTTP response headers to enforce better security of the HTML pages in Rudder webapp.
It follows CSP 3 specification (https://www.w3.org/TR/CSP3/) and is implemented by common and modern web browsers

Subtasks 1 (0 open — 1 closed)

Related issues 1 (0 open — 1 closed)

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Rudder

Custom queries

Bug #24015

Use Content-Security-Policy strict headers

Updated by Clark ANDRIANASOLO 4 months ago

Updated by Clark ANDRIANASOLO 4 months ago

Updated by Clark ANDRIANASOLO 4 months ago

Updated by Clark ANDRIANASOLO 4 months ago

Updated by Clark ANDRIANASOLO 4 months ago

Updated by Vincent MEMBRÉ 4 months ago

Updated by Vincent MEMBRÉ 3 months ago

Updated by Clark ANDRIANASOLO 2 months ago

Updated by Alexis Mousset 2 months ago

Updated by Vincent MEMBRÉ about 2 months ago

Updated by Vincent MEMBRÉ about 2 months ago